Operating Technology - Horley, United Kingdom - SGN

SGN
SGN
Verified Company
Horley, United Kingdom

1 week ago

Tom O´Connor

Posted by:

Tom O´Connor

beBee Recruiter
Description

THE ROLE


Here at SGN we are currently looking for an OT Information Security Analyst (OT) to support the OT Security Lead who is responsible for the overall security of our OT network and ensuring that our critical national infrastructure is securely designed, implemented,and operated in line with legislative, regulatory, and business security requirements.


The OT Security Analyst will also act as SGN's primary contact, in the absence of the OT Security Lead, liaising with regulatory and security advisory agencies helping to shape the security posture of the OT environment for success.

You will possess technical security expertise coupled with a strong team focus, excellent communication, relationship building and influencing skills.


Key Responsibilities:


  • Manage cyber security risk assessments, compliance checks, audits, and reviews to ensure that appropriate security controls are in place and highlight any deficiencies and gaps for management consideration and ensure Cyber Security controls are operatingas designed.
  • Provide cyber security assurance activities by ensuring implemented solutions are a replica of agreed and approved architecture definition documents
  • Where required, propose solutions and coordinate delivery of mitigating actions to ensure risk levels are aligned with risk appetite.
  • Work alongside and coordinate our thirdparty vendors including 'managed security services provider' (MSSP), penetration testers, attack path mapping and SOC operators including following up remediation work and reports
  • Work with the other teams to investigate, remediate and document cyber security incidents.
  • Be part of a 24/7 oncall rota
  • Work with the technical security and assurance team to help deliver new security tooling.
  • Be a Security touchpoint for Project Business Analysts and Project Management.
  • Provide project with security consultations, supporting OT Security projects within the Cyber programme
  • Security Architecture and Design
  • Review both high/low level architecture definition documents for compliance against security policies, standards and regulatory requirements pertinent to OT environments
  • Attend relevant Architecture Review Board and Technical Design Authority meetings providing signoff to designs created to deliver technical solutions into the OT environment
  • Produce inflight project functional and nonfunctional security requirements and embed into existing processes.
  • Participate in project initiatives around Governance Risk and Compliance tooling, third party risk/ supplier assurance and metrics initiatives.
  • Postimplementation / prego live auditing of initial requirements for Security OT projects, checking agreed design proposals matched against delivered solutions.
  • Remain up to date on cuttingedge cloud technology.
  • Operate collaboratively with the IT/OT Security Leads and the wider Corporate IT team to deliver the required solutions.

WHAT YOU'LL BRING

  • The individual should be educated to degree level in a relevant discipline. CISM/CISSP/CCSP/TOGAF/CRISC/COMPTIA Network+/COMPTIA Security+/CCNA Security/AWS Solution Architect or equivalent certification
  • Must have proven expertise in three of the following security domain areas, Vulnerability Assessment and Management, Physical Security, Security Risk and Compliance, Security Architecture, Endpoint Protection, Network Security, and Security Engineering
  • Good understanding and practical experience of Cyber Security Frameworks and standards such as NCSC security principles, NIST Framework, ISO 27001, ISO27005, IEC62443 etc.
  • Good understanding of Cyber Assurance Framework and experience with working with Regulators and providing compliance updates for OT environment
  • Role will require Security Clearance

Desirable

Experience or knowledge of:


  • Industrial Controls System (ICS)
  • Remote Telemetry Unit (RTU)
  • Supervisory Control and Data Acquisition (SCADA)
  • Programmable Logic Controller (PLC)
  • Video Monitoring System & Security communication system
Not a perfect skills match? Tell us what you're interested in - you might have a skill we didn't realise we needed


WHO WE ARE


We're on a journey to transform the future of gas and we think outside the box - futuristic technologies and robotics are leading our innovation.

Keeping our customers safe and warm is what we do but beyond that, we want to make the world a better place,which is why we're passionate about helping in our communities, reducing our carbon footprint and driving innovation in our industry.


At SGN, we strive to sustain our world through managing the network that distributes natural and green gas across the south of England and Scotland.

We have an important responsibility to keep the gas flowing to 5.9 million homes and businesses. Your workdirectly impacts SGNs commitments to keeping our customers' homes and businesses safe.
More jobs from SGN
See all jobs of SGN